1
0
Fork 0
mirror of https://github.com/imjasonh/gcloud-help synced 2026-07-18 23:08:48 +00:00

gcloud: Wed May 14 10:45:02 UTC 2025

This commit is contained in:
Automated 2025-05-14 10:45:02 +00:00
parent dfebca5b6c
commit 82f3a66664
423 changed files with 11160 additions and 1149 deletions

View file

@ -273,32 +273,28 @@ OPTIONAL FLAGS
*--extra-attributes-client-id*=_EXTRA_ATTRIBUTES_CLIENT_ID_::
The OAuth 2.0 client ID for retrieving extra attributes from the identity provider. Required
to get the Access Token using client credentials grant flow.
The OAuth 2.0 client ID for retrieving extra attributes from the identity provider. Required to get the access token using client credentials grant flow.
*--extra-attributes-client-secret-value*=_EXTRA_ATTRIBUTES_CLIENT_SECRET_VALUE_::
The OAuth 2.0 client secret for retrieving extra attributes from the identity provider.
Required to get the Access Token using client credentials grant flow.
The OAuth 2.0 client secret for retrieving extra attributes from the identity provider. Required to get the access token using client credentials grant flow.
*--extra-attributes-issuer-uri*=_EXTRA_ATTRIBUTES_ISSUER_URI_::
OIDC identity provider's issuer URI. Must be a valid URI using the 'https' scheme.
Required to get the OIDC discovery document.
OIDC identity provider's issuer URI. Must be a valid URI using the `https` scheme. Required to get the OIDC discovery document.
*--extra-attributes-type*=_EXTRA_ATTRIBUTES_TYPE_::
Represents the identity provider and type of claims that should be fetched. _EXTRA_ATTRIBUTES_TYPE_ must be one of: *attributes-type-unspecified*, *azure-ad-groups-display-name*, *azure-ad-groups-id*, *azure-ad-groups-mail*.
Represents the identity provider and type of claims that should be fetched. _EXTRA_ATTRIBUTES_TYPE_ must be one of: *azure-ad-groups-mail*, *azure-ad-groups-id*.
*--extra-attributes-filter*=_EXTRA_ATTRIBUTES_FILTER_::
The filter used to request specific records from IdP. When used with the attributes type
azure-ad-groups-mail or azure-ad-groups-id, the filter requests specific groups associated
with a user from the IdP. By default all of the groups associated with the user are fetched.
When used with the attributes type azure-ad-groups-mail, the groups that are used should be
security and mail enabled. When used with the attributes type azure-ad-groups-id, the groups
that are used should be security enabled. See
https://learn.microsoft.com/en-us/graph/search-query-parameter for more details.
The filter used to request specific records from the IdP. By default, all of the groups that are associated with a user are fetched. For Microsoft Entra ID, you can add `$search` query parameters using [Keyword Query Language] (https://learn.microsoft.com/en-us/sharepoint/dev/general-development/keyword-query-language-kql-syntax-reference). To learn more about `$search` querying in Microsoft Entra ID, see [Use the `$search` query parameter] (https://learn.microsoft.com/en-us/graph/search-query-parameter).
Additionally, Workforce Identity Federation automatically adds the following [`$filter` query parameters] (https://learn.microsoft.com/en-us/graph/filter-query-parameter), based on the value of `attributes_type`. Values passed to `filter` are converted to `$search` query parameters. Additional `$filter` query parameters cannot be added using this field.
* `AZURE_AD_GROUPS_MAIL`: `mailEnabled` and `securityEnabled` filters are applied.
* `AZURE_AD_GROUPS_ID`: `securityEnabled` filter is applied.
GCLOUD WIDE FLAGS
These flags are available to all commands: --access-token-file, --account, --billing-project, --configuration, --flags-file, --flatten, --format, --help, --impersonate-service-account, --log-http, --project, --quiet, --trace-token, --user-output-enabled, --verbosity.

View file

@ -259,36 +259,32 @@ FLAGS
*--clear-extra-attributes-config*:::
Clear the extra attributes configuration
Clear the extra attributes configuration.
*--extra-attributes-client-id*=_EXTRA_ATTRIBUTES_CLIENT_ID_:::
The OAuth 2.0 client ID for retrieving extra attributes from the identity provider. Required
to get the Access Token using client credentials grant flow.
The OAuth 2.0 client ID for retrieving extra attributes from the identity provider. Required to get the access token using client credentials grant flow.
*--extra-attributes-client-secret-value*=_EXTRA_ATTRIBUTES_CLIENT_SECRET_VALUE_:::
The OAuth 2.0 client secret for retrieving extra attributes from the identity provider.
Required to get the Access Token using client credentials grant flow.
The OAuth 2.0 client secret for retrieving extra attributes from the identity provider. Required to get the access token using client credentials grant flow.
*--extra-attributes-filter*=_EXTRA_ATTRIBUTES_FILTER_:::
The filter used to request specific records from IdP. When used with the attributes type
azure-ad-groups-mail or azure-ad-groups-id, the filter requests specific groups associated
with a user from the IdP. By default all of the groups associated with the user are fetched.
When used with the attributes type azure-ad-groups-mail, the groups that are used should be
security and mail enabled. When used with the attributes type azure-ad-groups-id, the groups
that are used should be security enabled. See
https://learn.microsoft.com/en-us/graph/search-query-parameter for more details.
The filter used to request specific records from the IdP. By default, all of the groups that are associated with a user are fetched. For Microsoft Entra ID, you can add `$search` query parameters using [Keyword Query Language] (https://learn.microsoft.com/en-us/sharepoint/dev/general-development/keyword-query-language-kql-syntax-reference). To learn more about `$search` querying in Microsoft Entra ID, see [Use the `$search` query parameter] (https://learn.microsoft.com/en-us/graph/search-query-parameter).
Additionally, Workforce Identity Federation automatically adds the following [`$filter` query parameters] (https://learn.microsoft.com/en-us/graph/filter-query-parameter), based on the value of `attributes_type`. Values passed to `filter` are converted to `$search` query parameters. Additional `$filter` query parameters cannot be added using this field.
* `AZURE_AD_GROUPS_MAIL`: `mailEnabled` and `securityEnabled` filters are applied.
* `AZURE_AD_GROUPS_ID`: `securityEnabled` filter is applied.
*--extra-attributes-issuer-uri*=_EXTRA_ATTRIBUTES_ISSUER_URI_:::
OIDC identity provider's issuer URI. Must be a valid URI using the 'https' scheme.
Required to get the OIDC discovery document.
OIDC identity provider's issuer URI. Must be a valid URI using the `https` scheme. Required to get the OIDC discovery document.
*--extra-attributes-type*=_EXTRA_ATTRIBUTES_TYPE_:::
Represents the identity provider and type of claims that should be fetched. _EXTRA_ATTRIBUTES_TYPE_ must be one of: *attributes-type-unspecified*, *azure-ad-groups-display-name*, *azure-ad-groups-id*, *azure-ad-groups-mail*.
Represents the identity provider and type of claims that should be fetched. _EXTRA_ATTRIBUTES_TYPE_ must be one of: *azure-ad-groups-mail*, *azure-ad-groups-id*.
GCLOUD WIDE FLAGS
These flags are available to all commands: --access-token-file, --account, --billing-project, --configuration, --flags-file, --flatten, --format, --help, --impersonate-service-account, --log-http, --project, --quiet, --trace-token, --user-output-enabled, --verbosity.